wip sign app #39

	name: Desktop MacOS Release

	on:
	push:
	branches:
	- main
	pull_request:
	branches:
	- main
	jobs:
	deploy:
	runs-on: macos-14
	timeout-minutes: 40

	steps:
	- uses: actions/checkout@v4
	with:
	fetch-depth: 0

	- name: set up JDK
	uses: actions/setup-java@v4
	with:
	distribution: 'zulu'
	java-version: 17

	- uses: gradle/actions/setup-gradle@v3
	with:
	gradle-home-cache-cleanup: true
	cache-encryption-key: ${{ secrets.GRADLE_CACHE_ENCRYPTION_KEY }}

	- name: Cache KMP tooling
	uses: actions/cache@v4
	with:
	path: \|
	~/.konan
	key: ${{ runner.os }}-v1-${{ hashFiles('*.versions.toml') }}

	- name: Import Mac App Distribution and Installer certificate
	uses: apple-actions/import-codesign-certs@v2
	with:
	p12-file-base64: ${{ secrets.MAC_APP_DISTRIBUTION_INSTALLER_CERTIFICATE }}
	p12-password: ${{ secrets.MAC_APP_DISTRIBUTION_INSTALLER_CERTIFICATE_PWD }}

	- name: Create DMG
	run: ./gradlew packageReleaseDmg

	- name: Upload DMG
	uses: actions/upload-artifact@v3
	with:
	name: kmp-ci
	path: composeApp/build/compose/binaries/main-release/dmg/*.dmg

Provide feedback